Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RPM deployment fails with SELinux enabled #75

Open
deajan opened this issue Sep 17, 2024 · 1 comment
Open

RPM deployment fails with SELinux enabled #75

deajan opened this issue Sep 17, 2024 · 1 comment

Comments

@deajan
Copy link

deajan commented Sep 17, 2024

Hello,

Tried to deploy cortext-tenant 1.14 on AlmaLinux 9.4 with SELinux enabled.

I got the following

type=AVC msg=audit(1726562570.288:7307): avc:  denied  { create } for  pid=26074 comm="useradd" name=".bash_logout" scontext=unconfined_u:unconfined_r:useradd_t:s0-s0:c0.c1023 tcontext=system_u:object_r:var_lib_t:s0 tclass=file permissive=0

So basically I had to run the after_install.sh script manually to create the user and home directory.
Also, the script misses a chown ${USER}:${USER} /etc/cortex-tenant.yml line I think.

Perhaps before running after_install.sh script you may run chcon -t bin_t after_install.sh

Thanks for your work ;)
Helps me a lot using mimir.
@blind-oracle
Copy link
Owner

I'm not using RPM OSes sadly anywhere, especially with SELinux enabled :)
So PR is welcome if you want to fix that.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@blind-oracle @deajan